I thought I'd post these instructions here since I haven't seen a clear, concise description of what LMDE (Linux Mint Debian Edition) users should do to update bash to fix ShellShock vulnerability.
Are You Vulnerable?
First, verify that you are vulnerable. From a terminal execute:
Code:
env x='() { :;}; echo vulnerable' bash -c "echo this is a test"
If the response includes "vulnerable" then you need to upgrade bash.
Add The Debian Repository
Currently (September 27, 2014 11:00 EDT) LMDE hasn't provided an update for bash. You can install it from Debian.
Create /etc/apt/sources.list.d/debian-package-repositories.list containing the following:
Code:
deb http://ftp.debian.org/debian sid main contrib non-free
Upgrading
$ sudo apt-get update
WARNING: DO NOT RUN sudo apt-get upgrade !!!
$ sudo apt-get install bash
When you are prompted to overwrite .bashrc enter
N
Cleanup
When you are finished remove /etc/apt/sources.list.d/debian-package-repositories.list or just comment out the one line with a
# at the beginning of the line.
You probably don't need to do this, but I rebooted and ran the test to verify that I no longer have the vulnerability.